Re: To tri-homed, or not to tri-homed... that is the question
From: Phillip Windell (_at_.)
Date: 01/31/05
- Next message: Aart Jansen: "Re: Multiple Emails"
- Previous message: Marina Roos [SBS-MVP]: "Re: Error in Outlook - 0x800CCC79"
- In reply to: Hugh G. Johnson: "To tri-homed, or not to tri-homed... that is the question"
- Next in thread: MCSEGURU: "Re: To tri-homed, or not to tri-homed... that is the question"
- Reply: MCSEGURU: "Re: To tri-homed, or not to tri-homed... that is the question"
- Reply: Hugh G. Johnson: "Re: To tri-homed, or not to tri-homed... that is the question"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 31 Jan 2005 16:01:11 -0600
"Hugh G. Johnson" <hughgjohnsonNOT@comcast.net> wrote in message
news:25idnfkK4JN8OGPcRVn-sA@comcast.com...
> We have a Development Web Server we want external clients/developers to be
> able to view and login too, as well as people in our office to publish
too.
> We've tried Web Publishing Rules, but are not happy with the results, so
> we're thinking out side the box (literally.) Would it be foolish to just
> move the web server to just behind the router so it's on the external side
A "development webserver" implies to me that development code is stored on
the server. It would be rather unwise to put the "family jewels" out on the
Internet at all in any kind of situation.
> of the ISA server? We could just port forward say say port 81 from the
> router? Or, is it better to follow MS example of Tri-homed and place a
third
> NIC in the ISA box and run this to the Web server?
Tri-Homed require a separate subnet that is *also* a Public set of
addresses. You can not use Private addresses on the "third-leg". Although
if you combine it with a Back-to-back DMZ you can "fudge" that. But if
already have a Back-to-back DMZ then there isn't much point in the Tri-homed
anyway,...just use the DMZ you already have.
> What we didn't like about Web Publishing is we had to create accounts for
> everyone that wanted to see the web server, and now when we do OWA we have
> to log in twice before we can view exchange or remote workspace.
No you don't. You can publish an Anonymous Website with ISA just fine.
Review the "choices" you made during the Publishing process. You must have
made some wrong choices
-- Phillip Windell [MCP, MVP, CCNA] www.wandtv.com
- Next message: Aart Jansen: "Re: Multiple Emails"
- Previous message: Marina Roos [SBS-MVP]: "Re: Error in Outlook - 0x800CCC79"
- In reply to: Hugh G. Johnson: "To tri-homed, or not to tri-homed... that is the question"
- Next in thread: MCSEGURU: "Re: To tri-homed, or not to tri-homed... that is the question"
- Reply: MCSEGURU: "Re: To tri-homed, or not to tri-homed... that is the question"
- Reply: Hugh G. Johnson: "Re: To tri-homed, or not to tri-homed... that is the question"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
